Hello again, an update...
I am setting up a router with a bunch of if's. I will not do any NAT or
fire walling.
I want to protect the router and it's if's with PF without blocking any
traffic not destined to the router.
Late tonight I came up with this pf.conf and I would like to have some
feedback on it
#pf.conf
table <ifips> { xxx.xxx.xxx.xxx }
table <noc> { xxx.xxx.xxx.xxx }
pass in quick proto tcp from <noc> to any port 22 keep state
block in quick from any to <ifips>
pass in all
pass out all
/J
_______________________________________________
freebsd-pf@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-pf
To unsubscribe, send any mail to "[EMAIL PROTECTED]"
